seccomp: swap hard-coded zeros to defined name For clarity, if CONFIG_SECCOMP isn't defined, seccomp_mode() is returning "disabled". This makes that more clear, along with another 0-use, and results in no operational change. Signed-off-by: Kees Cook <keescook@chromium.org>

commit: 221272f97ca528048a577a3ff23d7774286ca5fd [log] [tgz]
author: Kees Cook <keescook@chromium.org> Mon Jun 15 15:29:16 2015 -0700
committer: Kees Cook <keescook@chromium.org> Wed Jul 15 11:52:54 2015 -0700
tree: 78c221163aa09492b6cc2c90943734e5fcc1b9ba
parent: 13c4a90119d28cfcb6b5bdd820c233b86c2b0237 [diff]
diff --git a/include/linux/seccomp.h b/include/linux/seccomp.h
index a19ddac..f426503 100644
--- a/include/linux/seccomp.h
+++ b/include/linux/seccomp.h

@@ -78,7 +78,7 @@
 
 static inline int seccomp_mode(struct seccomp *s)
 {
-	return 0;
+	return SECCOMP_MODE_DISABLED;
 }
 #endif /* CONFIG_SECCOMP */
 

diff --git a/kernel/seccomp.c b/kernel/seccomp.c
index 645e42d..383bd6c 100644
--- a/kernel/seccomp.c
+++ b/kernel/seccomp.c

@@ -594,7 +594,7 @@
 	    unlikely(current->ptrace & PT_SUSPEND_SECCOMP))
 		return;
 
-	if (mode == 0)
+	if (mode == SECCOMP_MODE_DISABLED)
 		return;
 	else if (mode == SECCOMP_MODE_STRICT)
 		__secure_computing_strict(this_syscall);
commit	221272f97ca528048a577a3ff23d7774286ca5fd	[log] [tgz]
author	Kees Cook <keescook@chromium.org>	Mon Jun 15 15:29:16 2015 -0700
committer	Kees Cook <keescook@chromium.org>	Wed Jul 15 11:52:54 2015 -0700
tree	78c221163aa09492b6cc2c90943734e5fcc1b9ba
parent	13c4a90119d28cfcb6b5bdd820c233b86c2b0237 [diff]