Merge branch 'next' into for-linus

Prepare input updates for 5.11 merge window.
author: Dmitry Torokhov <dmitry.torokhov@gmail.com> 2020-12-14 16:27:23 -0800
committer: Dmitry Torokhov <dmitry.torokhov@gmail.com> 2020-12-14 16:27:23 -0800
commit: 4b4193256c8d3bc3a5397b5cd9494c2ad386317d (patch)
tree: b6b070f8893384b5d563fc616018e7d5644b2ece /include/linux/capability.h
parent: cffdd6d90482316e18d686060a4397902ea04bd2 (diff)
parent: 92f0a3a22c7a4c936277ece3a0215955a2d52238 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/include/linux/capability.h b/include/linux/capability.h
index ecce0f43c73a..1e7fe311cabe 100644
--- a/include/linux/capability.h
+++ b/include/linux/capability.h
@@ -251,6 +251,21 @@ extern bool privileged_wrt_inode_uidgid(struct user_namespace *ns, const struct
 extern bool capable_wrt_inode_uidgid(const struct inode *inode, int cap);
 extern bool file_ns_capable(const struct file *file, struct user_namespace *ns, int cap);
 extern bool ptracer_capable(struct task_struct *tsk, struct user_namespace *ns);
+static inline bool perfmon_capable(void)
+{
+	return capable(CAP_PERFMON) || capable(CAP_SYS_ADMIN);
+}
+
+static inline bool bpf_capable(void)
+{
+	return capable(CAP_BPF) || capable(CAP_SYS_ADMIN);
+}
+
+static inline bool checkpoint_restore_ns_capable(struct user_namespace *ns)
+{
+	return ns_capable(ns, CAP_CHECKPOINT_RESTORE) ||
+		ns_capable(ns, CAP_SYS_ADMIN);
+}
 
 /* audit system wants to get cap info from files as well */
 extern int get_vfs_caps_from_disk(const struct dentry *dentry, struct cpu_vfs_cap_data *cpu_caps);
author	Dmitry Torokhov <dmitry.torokhov@gmail.com>	2020-12-14 16:27:23 -0800
committer	Dmitry Torokhov <dmitry.torokhov@gmail.com>	2020-12-14 16:27:23 -0800
commit	4b4193256c8d3bc3a5397b5cd9494c2ad386317d (patch)
tree	b6b070f8893384b5d563fc616018e7d5644b2ece /include/linux/capability.h
parent	cffdd6d90482316e18d686060a4397902ea04bd2 (diff)
parent	92f0a3a22c7a4c936277ece3a0215955a2d52238 (diff)