This reverts commit
a7ef8ea9dbb1c125ecdeb00bcdd668eb5091413a.
https://lists.ubuntu.com/archives/kernel-team/2012-January/018695.html
"At this point, since there are no consumers of the old API, and it
will be almost certainly replaced by the BPF API, I think in the face
of the 5-year support of the LTS release, we should probably just
remove all of the seccomp_filter patches from Ubuntu." - Kees Cook
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
break;
#ifdef CONFIG_SECCOMP_FILTER
case 13:
+ if (this_syscall >= NR_syscalls || this_syscall < 0)
+ break;
+
if (!seccomp_test_filters(this_syscall))
return;
goto out;
}
+ if (nr >= NR_syscalls)
+ goto out;
+
ret = -EFAULT;
if (!user_filter)
goto out;
goto out;
}
+ if (nr >= NR_syscalls)
+ goto out;
+
ret = seccomp_clear_filter(nr);
+
out:
return ret;
}
goto out;
}
+ if (nr >= NR_syscalls)
+ goto out;
+
ret = -ENOMEM;
buf = kzalloc(available, GFP_KERNEL);
if (!buf)