UBUNTU: SAUCE: SECCOMP: audit: always report seccomp violations

Violations of seccomp filters should always be reported, regardless
of audit context. This the minimal change version of what has been
proposed upstream: https://lkml.org/lkml/2012/3/23/332

Signed-off-by: Kees Cook <kees@ubuntu.com>
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>

diff --git a/include/linux/audit.h b/include/linux/audit.h
index ab40f49..af4762b 100644 (file)
--- a/include/linux/audit.h
+++ b/include/linux/audit.h
@@ -456,8 +456,7 @@ void audit_core_dumps(long signr);
 
 static inline void audit_seccomp(unsigned long syscall, long signr, int code)
 {
-       if (unlikely(!audit_dummy_context()))
-               __audit_seccomp(syscall, signr, code);
+       __audit_seccomp(syscall, signr, code);
 }
 
 static inline void audit_ptrace(struct task_struct *t)