)]}'
{
  "commit": "8c15bfb36a442d63aec74a3379cb7a197f3e5f99",
  "tree": "7fc37cf00afa280421484a4c8bae5dd562484b77",
  "parents": [
    "d8a5b1377bf6b7f74234c7708b96d6a25507710e"
  ],
  "author": {
    "name": "Daniel Borkmann",
    "email": "daniel@iogearbox.net",
    "time": "Tue May 11 22:35:17 2021 +0200"
  },
  "committer": {
    "name": "Greg Kroah-Hartman",
    "email": "gregkh@linuxfoundation.org",
    "time": "Wed Jan 05 12:40:34 2022 +0100"
  },
  "message": "bpf: Add kconfig knob for disabling unpriv bpf by default\n\ncommit 08389d888287c3823f80b0216766b71e17f0aba5 upstream.\n\nAdd a kconfig knob which allows for unprivileged bpf to be disabled by default.\nIf set, the knob sets /proc/sys/kernel/unprivileged_bpf_disabled to value of 2.\n\nThis still allows a transition of 2 -\u003e {0,1} through an admin. Similarly,\nthis also still keeps 1 -\u003e {1} behavior intact, so that once set to permanently\ndisabled, it cannot be undone aside from a reboot.\n\nWe\u0027ve also added extra2 with max of 2 for the procfs handler, so that an admin\nstill has a chance to toggle between 0 \u003c-\u003e 2.\n\nEither way, as an additional alternative, applications can make use of CAP_BPF\nthat we added a while ago.\n\nSigned-off-by: Daniel Borkmann \u003cdaniel@iogearbox.net\u003e\nSigned-off-by: Alexei Starovoitov \u003cast@kernel.org\u003e\nLink: https://lore.kernel.org/bpf/74ec548079189e4e4dffaeb42b8987bb3c852eee.1620765074.git.daniel@iogearbox.net\nCc: Salvatore Bonaccorso \u003ccarnil@debian.org\u003e\nSigned-off-by: Greg Kroah-Hartman \u003cgregkh@linuxfoundation.org\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "d4b32cc32bb79030d9f685a969c7934ad7312180",
      "old_mode": 33188,
      "old_path": "Documentation/admin-guide/sysctl/kernel.rst",
      "new_id": "7d5e8a67c775f16dcc63bacdd50dbad80248d111",
      "new_mode": 33188,
      "new_path": "Documentation/admin-guide/sysctl/kernel.rst"
    },
    {
      "type": "modify",
      "old_id": "fc4c9f416fadbb36ca025d824805ccb9c641a9d3",
      "old_mode": 33188,
      "old_path": "init/Kconfig",
      "new_id": "13685bffef37016c497934a1003ad57fd2efb58b",
      "new_mode": 33188,
      "new_path": "init/Kconfig"
    },
    {
      "type": "modify",
      "old_id": "bb9a9cb1f321e8d2f5a91d91989cc57e0235edec",
      "old_mode": 33188,
      "old_path": "kernel/bpf/syscall.c",
      "new_id": "209e6567cdab051df2d3640cac5b83ce577866eb",
      "new_mode": 33188,
      "new_path": "kernel/bpf/syscall.c"
    },
    {
      "type": "modify",
      "old_id": "b9306d2bb4269e8fb5a12664a0e17359f8df2076",
      "old_mode": 33188,
      "old_path": "kernel/sysctl.c",
      "new_id": "72ceb19574d0c7f938282ddb7d6e8d57c6d14728",
      "new_mode": 33188,
      "new_path": "kernel/sysctl.c"
    }
  ]
}